REMARKS 

Claims 1-29 are pending in the above identified application. The Examiner has rejected 
claims 1-29. Applicants herein traverse these rejections. 1 

Claim Rejections Under 35 U.S.C. § 103 
Claims 1-6, 10-21, and 25-29 

The Examiner has rejected claims 1-6, 10-21, and 25-29 under 35 U.S.C. 103(a) as being 
anticipated by WO 99/30217 ("Gong") in view of Gong et al. "Going Beyond the Sandbox: An 
Overview of the New Security Architecture in the Java Development Kit 1 .2" (hereinafter 
Reference V). However, Gong does not teach "controlling access to the first trusted class by the 
untrusted class or a second trusted class based upon the privilege information associated with the 
first trusted class," as is recited in both claims 1 and 25 or "a controller for controlling access to 
the first trusted class during a trusted class operation," as is recited in claim 18. Reference V 
does not make up the difference. 

As the Examiner points out in the Office Action, "Gong does not explicitly teaches [sic] 

controlling access to the first trusted class by the untrusted class or a second trusted class based 

upon the privilege information associating with the first trusted class." (OA, page 3). Therefore, 

Gong does not teach "controlling access to the first trusted class by the untrusted class or a 

second trusted class based upon the privilege information associated with the first trusted class," 

as is recited in claims 1 and 25. Further, the Examiner states that "Gong does not explicitly 

teaches [sic] controlling access to the first trusted class by the untrusted class or a second trusted 

class based upon the privilege information associating with the first trusted class." (OA, page 4). 

1 Characterizations of both the claims of the present application and the teachings of various 
prior art are made throughout the Office Action. Applicants do not automatically agree or 
acquiesce in any of these characterizations, even if they are not specifically addressed in this 
response. 



Therefore, Gong does not teach "a controller for controlling access to the first trusted class 
during a trusted class operation, wherein the controller is operative to receive a request for the 
trusted class operation from the untrusted class or a second trusted class and grant access to the 
first trusted class based on at least one permissive attribute within the privilege information for 
the first trusted class/' as is recited in claim 18. 

The Examiner points to section 2.4 on pages 5 and 6 of Reference V to cure the defects in 
the teaching of Gong. However, that is not the case. Reference V still teaches controlling access 
to the resources and not controlling access to trusted classes and therefore does not teach 
"controlling access to the first trusted class by the untrusted class or a second trusted class based 
upon the privilege information associated with the first trusted class," as is recited in claims 1 
and 25, or "a controller for controlling access to the first trusted class during a trusted class 
operation, wherein the controller is operative to receive a request for the trusted class operation 
from the untrusted class or a second trusted class and grant access to the first trusted class based 
on at least one permissive attribute within the privilege information for the first trusted class," as 
is recited in claim 18. 

As stated in Reference V, 

[t]o summarize, a simple and prudent rule of thumb for calculating 
permissions is the following: 

■ The permission of an execution thread is the intersection of 
the permissions of all protection domains transversed by 
the execution thread. 

■ When some code calls the beginPrivileged primitive, the 
permission of the execution thread includes a permission if 
it is allowed by the said code's protection domain and by 
all protection domains that are called or entered directly or 
indirectly subsequently. 



■ When a new thread is created, it inherits from its parent 
thread the current security context (i.e., the set of protection 
domains present in the parent at child creation time). This 
inheritance is transitive. 

(Reference V, pg. 6). As these rules are set out, the permissions discussed are permissions to 

access resources and not permissions to access a "first trusted class." Therefore, as discussed 

above, Reference V does not teach "controlling access to the first trusted class by the untrusted 

class or a second trusted class based upon the privilege information associated with the first 

trusted class," as is recited in claims 1 and 25, or "a controller for controlling access to the first 

trusted class during a trusted class operation, wherein the controller is operative to receive a 

request for the trusted class operation from the untrusted class or a second trusted class and grant 

access to the first trusted class based on at least one permissive attribute within the privilege 

information for the first trusted class," as is recited in claim 18. 

Claims 2-6 and 10-17 depend from claim 1 and are therefore allowable over the 

combination of Gong and Reference V for at least the same reasons as is claim 1 . Claims 19-21 

depend from claim 1 8 and are therefore allowable over the combination of Gong and Reference 

V for at least the same reasons as is claim 1 8. Claims 26-29 depend from claim 25 and are 

therefore allowable over the combination of Gong and Reference V for at least the same reasons 

as is claim 25. 

Therefore, Claims 1-6, 10-21, and 25-29 are allowable over the combination of Gong and 
Reference V because the combination does not teach all of the elements of the claims. 
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Claims 7-9 and 22-24 

The Examiner has rejected claims 7-9 and 22-24 under 35 U.S.C. § 103 over the 
combination of Gong, Reference V, and Papa et al. As discussed above, claims 1 and 18 are 
allowable over the combination of Gong and Reference V. Papa et al. does not cure the defects 
in the teachings of Gong and Reference V. Therefore, claims 1 and 1 8 are allowable over the 
combination of Gong, Reference V, and Papa et al. Claims 7-9 depend from claim 1 and are 
therefore allowable for at least the same reasons as is claim 1 . Claims 22-24 depend from claim 
1 8 and are allowable over claim 1 8 for at least the same reasons as is claim 1 8. 



In view of the foregoing amendments and remarks, Applicant respectfully requests 
reconsideration and reexamination of this application and the timely allowance of the pending 
claims. 

Please grant any extensions of time required to enter this response and charge any 
additional required fees to our deposit account 06-0916. 



Conclusion 
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